The Rework Know-how Summits begin October thirteenth with Low-Code/No Code: Enabling Enterprise Agility. Register now!
Mondoo, an under-the-radar infrastructure safety platform aimed toward developer operations (DevOps) groups, has raised $12 million in a collection A spherical of funding led by European VC Atomico and revealed a beforehand undisclosed $3 million seed spherical of funding that closed again in April.
The corporate, which has places of work in San Francisco and Berlin, launched its platform out of stealth simply three weeks in the past. It constitutes a part of a rising pattern within the cybersecurity sphere, which has seen safety groups more and more share tasks for safeguarding firm infrastructure with builders.
“Our aim is to carry DevOps and safety groups nearer collectively and assist them safe their environments,” Mondoo CEO and cofounder Soo Choi-Andrews advised VentureBeat.
Mondoo was based in 2020 by former Googlers Choi-Andrews and Dominik Richter, together with Christoph Hartmann, who had labored alongside his fellow cofounders a number of years earlier than at DevOps software company Chef Software.
The “bottom-up” cybersecurity method is probably finest exemplified by Snyk, which targets its open supply safety scanning smarts at builders slightly than safety groups — this helps catch points in actual time because the developer codes, slightly than later, after they’re pushing into the stay codebase. For context, Snyk raised $375 million in fresh capital simply final month and is now valued at $8.6 billion.
Mondoo, for its half, is a cloud-native safety platform that provides infrastructure builders automated danger evaluation and insights into all their business-critical infrastructure, together with private and non-private cloud environments like AWS, Azure, Google Cloud, and VMWare; Kubernetes clusters comparable to Amazon EKS and Google Kubernetes Engine; servers and endpoints working Home windows, Linux, and MacOS; and software program provide chain providers like GitHub, Jenkins, and GitLab.
This highlights a significant promoting level for Mondoo. Though it touts itself as a “cloud-native” safety and vulnerability danger administration platform, it’s actually suited to companies that run a hybrid infrastructure, giving DevOps engineers the instruments to automate safety assessments and uncover hidden dangers all over the place.
For instance, customers can join Mondoo whereas working on an AWS setting to check their firm’s cloud safety posture and the workloads that run on it and immediately discover vulnerabilities throughout their working programs and digital machines — whereas pushing higher-priority points to the highest of the listing to analyze. Mondoo may establish compliance and coverage violations, whereas customers can extract key information about their infrastructure and write customized insurance policies.
When it comes to the aggressive panorama, Mondoo encroaches on an area that counts well-established names comparable to Rapid7, Qualys, and Tenable’s Nessus, although it additionally jibes with newer upstarts comparable to Orca, Wiz, and Lacework — each of which has raised sizable sums of money this year.
However Mondoo stated it’s carving out a distinct segment by not solely aiming its platform at builders, but in addition focusing on a broad gamut of use instances as an alternative of a single factor, comparable to cloud safety posture administration.
“Mondoo focuses on the DevOps viewers and helps them to establish and act on points of their fleet and lift the safety baseline throughout all applied sciences,” Choi-Andrews stated. “Not like opponents, we assist vulnerability, compliance, safety, and finest practices throughout on-prem, servers, cloud, VMs, containers, Kubernetes, SaaS providers, and APIs.”
For now, Mondoo is obtainable below a software-as-a-service (SaaS) subscription, which includes a basic free plan with restricted cloud accounts and property, although the corporate famous that it intends to supply a self-hosted choice within the close to future.
Apart from Atomico, Mondoo has ushered in a slew of different institutional and angel traders throughout its latest seed and collection A rounds, together with Firstminute Capital, System.One, MongoDB chair Tom Killalea, Intuit CTO Marianna Tessel, Google product VP Bradley Horowitz, and Puppet cofounder Andrew Clay Shafer.
VentureBeat’s mission is to be a digital city sq. for technical decision-makers to realize data about transformative expertise and transact.
Our website delivers important info on information applied sciences and techniques to information you as you lead your organizations. We invite you to grow to be a member of our group, to entry:
- up-to-date info on the topics of curiosity to you
- our newsletters
- gated thought-leader content material and discounted entry to our prized occasions, comparable to Transform 2021: Learn More
- networking options, and extra